Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
maxdb vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2005-0111
Stack-based buffer overflow in the websql CGI program in MySQL MaxDB 7.5.00 allows remote malicious users to execute arbitrary code via a long password parameter.
Mysql Maxdb 7.5.00
6.9
CVSSv2
CVE-2008-0306
sdbstarter in SAP MaxDB 7.6.0.37, and possibly other versions, allows local users to execute arbitrary commands by using unspecified environment variables to modify configuration settings.
Sap Maxdb 7.6.0.37
6.5
CVSSv2
CVE-2018-2450
SAP MaxDB (liveCache), versions 7.8 and 7.9, allows an attacker who gets DBM operator privileges to execute crafted database queries and therefore read, modify or delete sensitive data from database.
Sap Maxdb 7.9
Sap Maxdb 7.8
5
CVSSv2
CVE-2015-2278
The LZH decompression implementation (CsObjectInt::BuildHufTree function in vpa108csulzh.cpp) in SAP MaxDB 7.5 and 7.6, Netweaver Application Server ABAP, Netweaver Application Server Java, Netweaver RFC SDK, GUI, RFC SDK, SAPCAR archive tool, and other products allows context-de...
Sap Maxdb 7.5
Sap Netweaver Java Application Server -
Sap Netweaver Rfc Sdk -
Sap Gui -
Sap Rfc Library
Sap Maxdb 7.6
Sap Netweaver Abap Application Server -
1 Article
5
CVSSv2
CVE-2005-0083
MySQL MaxDB 7.5.00 for Windows, and possibly earlier versions and other platforms, allows remote malicious users to cause a denial of service (application crash) via invalid parameters to the (1) DBMCli_String::ReallocString, (2) DBMCli_String::operator, (3) DBMCli_Buffer::ForceR...
Mysql Maxdb 7.5.00
5
CVSSv2
CVE-2005-0081
MySQL MaxDB 7.5.0.0, and other versions prior to 7.5.0.21, allows remote malicious users to cause a denial of service (crash) via an HTTP request with invalid headers.
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.15
5
CVSSv2
CVE-2005-0082
The sapdbwa_GetUserData function in MySQL MaxDB 7.5.0.0, and other versions prior to 7.5.0.21, allows remote malicious users to cause a denial of service (crash) via invalid parameters to the WebDAV handler code, which triggers a null dereference that causes the SAP DB Web Agent ...
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
Mysql Maxdb 7.5.00.19
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.14
5
CVSSv2
CVE-2004-1169
MaxDB WebTools 7.5.00.18 and previous versions allows remote malicious users to cause a denial of service (application crash) via an HTTP GET request for a file that does not exist, followed by two carriage returns, which causes a NULL dereference.
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.18
5
CVSSv2
CVE-2004-0931
MySQL MaxDB prior to 7.5.00.18 allows remote malicious users to cause a denial of service (crash) via an HTTP request to webdbm with high ASCII values in the Server field, which triggers an assert error in the IsAscii7 function.
Mysql Maxdb 7.5.00.15
Mysql Maxdb 7.5.00.16
Mysql Maxdb 7.5.00.08
Mysql Maxdb 7.5.00.11
Mysql Maxdb 7.5.00.12
Mysql Maxdb 7.5.00.14
4.4
CVSSv2
CVE-2008-1810
Untrusted search path vulnerability in dbmsrv in SAP MaxDB 7.6.03.15 on Linux allows local users to gain privileges via a modified PATH environment variable.
Sap Maxdb 7.6.03.15
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2